• HowTos
• eToken_on_debian

Howto running the etoken under debian

• date: 03.05.2006
• author: R. Wenzel

• <etoken@dw-itsecurity.de>

• used eToken hardware: eTokenPro 32K
• used eToken RTE Version: 3.60

This document describes the usage of an Aladdin eToken Pro 32k on Debian Sarge. This distribution is not officially supported, so it will require patching to get the eToken up and running. Some warning in the beginning: You must obtain a copy of Aladdins Middleware for Linux, this is not open source software and you will have to pay for it or you have a licence for an other operating system already obtained.

Ok, we are starting with a fresh Debian Sarge installation, using kernel 2.6 with hotplug. You need two additional packages, the PCSC daemon and the sixth version of libstdc. Install the required packages with

apt-get install pcscd libstdc++6

Extract the file Linux_MW_Release.zip, then extract the file etoken-3-60.19-linux-RHE4-i386.tar.zip. Now you have to patch the Installer.pm and the startup script for the PCSC daemon. Copy this file (etoken_patch) into the directory etoken-3-60.19-linux-RHE4-i386 and apply the patch with

patch -p0 < etoken.patch

The last step is creating an additional link for the PCSC library with

ln -s /usr/lib/libpcsclite.so.1.0.0 /usr/lib/libpcsclite.so.0

and you are ready to install Aladdins Middleware for Linux with

./petoken install

Now get yourself a coffee, run

tail -f /var/log/syslog

and plug-in the eToken into an USB port. The syslog should look like this:

• kernel: usb 1-1: new full speed USB device using address 2
• etokend: Power up succeed from 1 attempt
• etokend: connection closed by client on fd = 3, (connection=3)
• etokend: PowerICC - no more than 33 bytes of answer are expected
• etokend: Power up succeed
• pcscd: eventhandler.c:413:EHStatusHandlerThread() Card inserted into AKS ifdh 00 00
• pcscd: Card ATR: 3B F2 98 00 FF C1 10 31 FE 55 C8 03 15

Troubleshooting: I have experienced problems with the etokend to get hold of the eToken. You get the first three lines in the syslog, but then the daemon stops. In this case, you may mess with Mrs. Murphy and uninstall the software and reinstall it.

Test the proper installation by running

etckdump --slot=0

and you should receive something like

• Dumping token "eToken" in slot #0
• Free public memory = 26140
• Free private memory = 26140
• Skipping C_Login (use etckdump --pin | --pinhex | -h)
• Found 0 Objects

Troubleshooting: Any program using Aladdins Middleware for Linux may not terminate properly, they do run, but never return to the commandline. If you find a solution for this, please let me know by e-mail.